14 matches found
EUVD-2007-5104
Malware in sbrugna...
Novus 1.0 Buscar.ASP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25828/info Novus is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser...
Cross site scripting
Cross-site scripting XSS vulnerability in buscar.asp in Solidweb Novus 1.0 allows remote attackers to inject arbitrary web script or HTML via the p parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2007-5142
The CVE-2007-5142 entry describes a Cross-site Scripting (XSS) vulnerability in the buscar.asp page of Solidweb Novus 1.0. The issue allows remote attackers to inject arbitrary script/HTML by supplying a value in the p parameter. This is evidenced by multiple sources referencing the same flaw and...
Sql injection
SQL injection vulnerability in notas.asp in Novus 1.0 allows remote attackers to execute arbitrary SQL commands via the notaid parameter...
CVE-2007-5123
SQL injection vulnerability in notas.asp in Novus 1.0 allows remote attackers to execute arbitrary SQL commands via the notaid parameter...
CVE-2007-5123
SQL injection vulnerability in notas.asp in Novus 1.0 allows remote attackers to execute arbitrary SQL commands via the notaid parameter...
CVE-2007-5123
CVE-2007-5123 describes an SQL injection vulnerability in notas.asp of Novus 1.0, exploitable via the nota_id parameter to allow remote execution of arbitrary SQL commands. Affected product details: Novus 1.0, specifically the notas.asp component; root cause is improper handling/validation of the...
Novus 1.0 - Buscar.asp Cross-Site Scripting
Novus 1.0 - Buscar.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/25828/info Novus is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in t...
Novus 1.0 (notas.asp nota_id) Remote SQL Injection Vulnerability
No description provided by source. Novus - Sistema de administracion y contenido. bug: Sql Inyection. official site: http://novus.com.mx d0rk: "Powered by Novus" free: no system: asp bug found by ka0x D.O.M TEAM we: ka0x, an0de, xarnuz, s0cratex ka0x01atgmail.com tables: 1- anota.notaid 2-...
Novus 1.0 - 'Buscar.asp' Cross-Site Scripting
source: https://www.securityfocus.com/bid/25828/info Novus is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...
Novus 1.0 (notas.asp nota_id) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================ Novus 1.0 notas.asp notaid Remote SQL Injection Vulnerability ================================================================ Novus - Sistema de administracion y contenido...
Novus 1.0 - notas.asp?nota_id SQL Injection
Novus 1.0 - notas.asp?notaid SQL Injection Novus - Sistema de administracion y contenido. bug: Sql Inyection. official site: http://novus.com.mx d0rk: "Powered by Novus" free: no system: asp bug found by ka0x D.O.M TEAM we: ka0x, an0de, xarnuz, s0cratex ka0x01atgmail.com tables: 1- anota.notaid 2...
Novus 1.0 - 'notas.asp?nota_id' SQL Injection
Novus - Sistema de administracion y contenido. bug: Sql Inyection. official site: http://novus.com.mx d0rk: "Powered by Novus" free: no system: asp bug found by ka0x D.O.M TEAM we: ka0x, an0de, xarnuz, s0cratex ka0x01atgmail.com tables: 1- anota.notaid 2- anota.fepublicacion 3- anota.seccionid 4-...